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1. (Cancelled) 

2. (Currently Amended) The computer-implemented process recited by 
Claim [[1]]3 further comprising the step of authorizing access to a predetermined level of 
the network service if the workstation security credentials satisfy a portion of the 
workstation security policy. 

3. (Previously Presented) A computer-implemented process for 
authenticating a workstation requesting a network service from a network server via a 
computer network, comprising the steps: 

completing a vulnerability assessment of the workstation to identify 
security vulnerabilities that would compromise the secure operation of the workstation on 
the computer network; 

generating workstation security credentials based on the vulnerability 
assessment, the workstation security credentials comprising one of integrity information 
describing whether the workstation has been compromised, and security posture 
information describing the workstation's potential for compromise, wherein the step of 
generating the workstation security credentials comprises completing the vulnerability 
assessment of the workstation by a local workstation assessment service maintained on 
the workstation, the local workstation assessment service operative to generate the 
workstation security credentials; 

comparing the workstation security credentials to a workstation security 
policy to determine whether the workstation should be granted access to the network 
service; and 

authorizing access to the network service by the workstation if the 
workstation security credentials satisfy the workstation security policy, otherwise 
denying access to the network service by the workstation. 

4. (Original) The computer-implemented process recited by Claim 3, 
wherein the workstation security policy is maintained on the workstation, the process 
further comprising the step of providing the workstation security credentials from the 
local workstation assessment service to the workstation security policy. 
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5, (Cancelled) 

6. (Previously Presented) A computer-implemented process for 
authenticating a workstation requesting a network service from a network server via a 
computer network, comprising the steps: 

completing a vulnerability assessment of the workstation to identify 
security vulnerabilities that would compromise the secure operation of the workstation on 
the computer network; 

generating workstation security credentials based on the vulnerability 
assessment, the workstation security credentials comprising one of integrity information 
describing whether the workstation has been compromised, and security posture 
information describing the workstation's potential for compromise, wherein the step of 
generating the workstation security credentials comprises completing the vulnerability 
assessment of the workstation by a network workstation assessment service maintained 
on the network server, the network workstation assessment service operative to generate 
the workstation security credentials, wherein the workstation security policy is 
maintained on the workstation, 

providing the workstation security credentials from the network 
workstation assessment service to the workstation security policy on the workstation via 
the computer network; 

comparing the workstation security credentials to a workstation security 
policy to determine whether the workstation should be granted access to the network 
service; and 

authorizing access to the network service by the workstation if the 
workstation security credentials satisfy the workstation security policy, otherwise 
denying access to the network service by the workstation, 

7-8. (Cancelled) 

9, (Currently Amended) The computer-implemented process recited by 
Claim [[8]]3 further comprising the step of communicating a service decision from the 
network server to the workstation via the computer network, the service decision defining 
whether the workstation is allowed to access the network service or a degraded form of 
the network service. 

10. (Cancelled) 
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11. (Currently Amended) The computer-implemented process recited by 
Claim [[10]]3, wherein the workstation security policy is maintained on the network 
server, the process further comprising the step of comparing at the network server the 
workstation security credentials to the workstation security policy to determine whether 
the workstation should be granted access to the network service or a degraded form of the 
network service. 

12-13 (Cancelled) 

14. (Currently Amended) The n e twork s e curity system computer- 
implemented process recited by Claim [[13]] 3 - further comprising a workstation o e ourity 
policy at th e network ocrvof, wherein the workstation security policy is operative to 
define security requirements for secure operation of the workstation on the computer 
network- 

15. (Currently Amended) The notwork aocurity oyotom computer- 
implemented process recited by Claim 14 7 wherein the network service is further 
operative for comparing the workstation security credentials to the workstation security 
policy to determine whether the workstation should be granted access to [[the]]a software 
service, the network service operative to authorize access to the software service by the 
workstation if the workstation security credentials satisfy the workstation security policy. 

16-25 (Cancelled) 

[The Remainder of this page has been intentionally left blank.] 
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26. (New) The computer-implemented process recited by Claim 3, 
further comprising: 

running a network client on the workstation; and 

retrieving the workstation credentials from the local workstation 
assessment service with the network client. 

27. (New) The computer-implemented process recited by Claim 3 7 
further comprising: 

running a network client on the workstation; 

retrieving the workstation credentials from the local workstation 
assessment service with the network client; and 

obtaining user credentials with the network client. 

28. (New) The computer-implemented process recited by Claim 3, 
further comprising: 

running a network client on the workstation; and 

obtaining user credentials with the network client from a user credential 

database, 

29. (New) The computer-implemented process recited by Claim 3 7 
further comprising: 

retrieving the workstation credentials from the local workstation 
assessment service with a network client residing on the workstation; and 

obtaining user credentials with the network client from a user credential 

database. 

30. (New) The computer-implemented process recited by Claim 3, 
further comprising: 

retrieving the workstation credentials from the local workstation 
assessment service with a network client; and 

transmitting the workstation credentials over the computer network with 
the network client. 
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3L (New) The computer-implemented process recited by Claim 3, 
further comprising: 

obtaining user credentials with the network client; and 

transmitting the user credentials over the computer network with the 

network client. 

32. (New) The computer-implemented process recited by Claim 3, 
further comprising: 

obtaining user credentials with a network client; 

retrieving the workstation credentials from the local workstation 
assessment service with the network client; 

transmitting the user and workstation credentials over the computer 
network with the network client. 



33. (New) The computer-implemented process recited by Claim 6 further 
comprising the step of authorizing access to a predetermined level of the network service 
if the workstation security credentials satisfy a portion of the workstation security policy. 



[The Remainder of this page has been intentionally left blank.] 



^6- 

PA6E 9/11 * RCVD AT 10/2812005 4:03:40 PM [Eastern Daylight Time] ' SVR:USPTO-EFXRF-6/26* DNISOTOO 1 CSID:404 572 5145 1 DURATION (mm-ss):05-16 



